1 results (0.007 seconds)

CVSS: 7.5EPSS: 10%CPEs: 3EXPL: 0

Format string vulnerability in the logging functionality in BitDefender AntiVirus 7.2 through 9 allows remote attackers to cause a denial of service and possibly execute arbitrary code via format string specifiers in file or directory name. • http://kb.bitdefender.com/KB261-en--Filename-Format-String-Vulnerability.html http://secunia.com/advisories/16991 http://securityreason.com/securityalert/45 http://shadock.net/secubox/BitDefenderLoggingFunc.html http://www.securityfocus.com/bid/14968 • CWE-134: Use of Externally-Controlled Format String •